In the default setting, the VPN client doesn't verify the server cert.
If you want to let the VPN client verify the server cert, you have to import the server cert or CA cert to the client and enable the verification.